Executive Summary

Phishing is a significant security threat to the Internet, which causes tremendous economic loss every year. This paper, proposes a novel hybrid phish detection method based on information extraction (IE) and information retrieval (IR) techniques. The identity-based component of method detects phishing webpages by directly discovering the inconsistency between their identity and the identity they are imitating. The keywords-retrieval component utilizes IR algorithms exploiting the power of search engines to identify phish. The method requires no training data, no prior knowledge of phishing signatures and specific implementations, and thus is able to adapt quickly to constantly appearing new phishing patterns.